Tags » XSS

[securityoverride.org] Basic Mission 15

Đây là challenge tốn không ít thời gian khám phá và search google cũng như forum bàn luận của trang này mà tôi mới làm được nó. 736 more words


Firefox v28.0 XSS Vulnerability

This post concentrates on my recent research regarding reflective Cross-Site Scripting (XSS or CSS) vulnerabilities within the most popular web browsers. The setup that is used to test the browsers is done within virtualised environment, using Damn Vulnerable Web Application (DVWA) hosted by XAMPP Apache server. 360 more words


Up and Running with Kali Linux and Friends

When it comes to measuring the security posture of an application or network, the best defence against an attacker is offence. What does that mean? It means your best defence is to have someone with your best interests (generally employed by you), if we’re talking about your asset, assess the vulnerabilities of your asset and attempt to exploit them. 4,860 more words


How Add-ons are Helpful for Web Testing

An add-on is either a software unit that can be added to a browser to increase its capabilities or a program utility that enhances a primary program. 913 more words

Mindfire Solutions

Fireware XTM 11.8.3 Update Corrects XSS Flaw

Overall Severity: Medium


  • This vulnerability affects: WatchGuard Fireware XTM 11.8.1 and earlier
  • How an attacker exploits it: Either by enticing an XTM administrator into clicking a specially crafted link or by directly interacting with the appliance’s web management UI (requires authentication)
  • 924 more words
Security Updates

Gotham Security Daily Threat Alerts

February 19, V3.co.uk – (International) Microsoft crash reports reveal Houdini hack campaign hitting firms. A security researcher from Websense found a new hack campaign utilizing the Houdini remote access trojan (RAT) targeting a mobile network operator and government body while cross-referencing Microsoft application and software crash reports. 379 more words